Overview
We are seeking a highly skilled Vulnerability Manager to join our Security Operations Centre (SOC). The ideal candidate will lead the enterprise vulnerability management program, ensuring timely identification, assessment, and remediation of security vulnerabilities across infrastructure, applications, and systems. This role bridges technical expertise and strategic oversight, working closely with SOC analysts, incident responders, IT operations, and security assurance teams to reduce the organisation’s attack surface.
Company
SecureCloud+ specialises in providing fully managed secure ICT services to the UK's Defence and Security sectors, as well as other government departments with complex and demanding security requirements. SecureCloud+ prides itself on its successful track-record of delivering real benefits to its customers, but also on its ethos of investing in its employees’ personal and professional growth.
How to apply
By clicking the APPLY button you will be directed to our recruitment pages; please complete the final application steps and upload your CV so we can consider your interest in the role in full.
Key Responsibilities
* Vulnerability Management: Lead the end-to-end vulnerability management lifecycle, from discovery and assessment to prioritisation and remediation tracking.
* Manage and optimise the use of vulnerability scanning tools (e.g. Tenable, Nessus).
* Regularly scan networks, systems, and applications to identify security vulnerabilities.
* Classify, prioritise, and report vulnerabilities based on severity, business impact, and threat intelligence.
* Coordination and Remediation: Collaborate with Service Ops, cloud, and infrastructure teams to ensure vulnerabilities are remediated within defined SLAs.
* Track remediation efforts and report on progress to stakeholders and leadership.
* Create and maintain vulnerability exception and risk acceptance processes.
* Integration with SOC Operations: Partner with SOC analysts and threat intelligence teams to correlate vulnerabilities with active threats or exploitation trends.
* Support incident response efforts by identifying exploitable weaknesses during post-incident reviews.
* Reporting and Metrics: Generate actionable vulnerability reports and dashboards for both technical and non-technical audiences.
* Provide regular metrics and KPIs to measure program effectiveness and risk reduction over time.
* Process and Policy Development: Develop and maintain vulnerability management policies, procedures, and standards.
* Contribute to security architecture reviews and hardening guides.
Required Qualifications
* 3+ years of experience in cybersecurity, with at least 2+ years focused on vulnerability management.
* Experience working in or with a Security Operations Centre (SOC).
* Strong knowledge of vulnerability management frameworks and tools.
* Familiarity with threat and vulnerability management standards (e.g., CVSS, NIST, MITRE ATT&CK).
* Understanding of common operating systems (Windows, Linux), network devices, and cloud platforms (AWS, Azure, GCP).
* Experience with SIEM, EDR, and asset inventory tools.
Preferred Certifications
* Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience).
* CISSP, CISM, GIAC GCIH, OSCP, or equivalent.
* Vendor-specific certifications (e.g., Tenable Certified Specialist, QualysGuard Certified Specialist).
Soft Skills
* Excellent organisational skills and attention to detail.
* Strong communication skills to collaborate with both technical and non-technical stakeholders.
* Ability to work independently and collaboratively in a fast-paced environment.
* Strong problem-solving skills and analytical thinking.
Are you ready to embark on this exciting career opportunity? We look forward to welcoming you to our esteemed team at SecureCloud+.
Seniority level
* Associate
Employment type
* Full-time
Job function
* Information Technology
* Industries
* IT Services and IT Consulting
Referrals increase your chances of interviewing at SecureCloud+ by 2x
Get notified about new Security Operations Manager jobs in Stoke-On-Trent, England, United Kingdom.
#J-18808-Ljbffr